search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-10-23 2002-09-30 2003-02-26 VU#875073 Kerberos administration daemon vulnerable to buffer overflow
2002-10-18 2002-10-11 2002-10-18 VU#482241 Avaya switches contains multiple undocumented accounts allowing full administrative access to the device
2002-10-17 2002-10-17 2003-01-06 VU#459371 Multiple IPsec implementations do not adequately validate authentication data
2002-10-17 2002-08-27 2002-10-28 VU#899713 Microsoft Word and Excel documents allow local file reading by via embedded fields
2002-10-17 2002-09-26 2002-10-17 VU#600777 gv contains buffer overflow in sscanf() function
2002-10-16 2002-10-15 2002-12-12 VU#169841 dvips uses system() function insecurely thereby allowing arbitrary command execution
2002-10-15 2002-10-15 2003-01-06 VU#539363 State-based firewalls fail to effectively manage session table resource exhaustion
2002-10-15 2002-02-22 2002-10-16 VU#868219 Multiple vendors' HTTP content/virus scanners do not check data tunneled via HTTP CONNECT method
2002-10-11 2002-09-09 2003-08-13 VU#140898 Microsoft Java implementation allows execution of malicious code
2002-10-11 2002-09-09 2003-11-07 VU#307306 Microsoft Java implementation JDBC classes do not properly validate DLL requests
2002-10-11 2002-09-09 2004-08-26 VU#792881 Microsoft Java implementation JDBC functions do not properly validate parameters
2002-10-11 2002-06-12 2003-08-05 VU#879386 Multiple buffer overflow vulnerabilities in QNX
2002-10-10 2002-10-09 2003-04-09 VU#538033 ypxfrd daemon fails to properly validate user supplied arguments in "getdbm" procedure
2002-10-08 2002-10-07 2003-03-07 VU#328867 Multiple vendors' firewalls do not adequately keep state of FTP traffic
2002-10-04 2002-10-02 2002-10-04 VU#840137 Microsoft Services for Unix 3.0 Interix SDK vulnerable to buffer overrun via RPC request containing improper parameter size check

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis